Recent posts
[SamplePedia] AgeoStealer - Electron-based infostealer
How attacker could hide an infostealer inside electron application
[SamplePedia] The Wolf in AutoIt’s Clothing - How Vidar Hides in Plain Sight
AutoIt-based malware sample that unpacks and executes a Vidar payload using RC4 decryption and LZNT1 decompression.
Absurdities Part-2: From Handle to Object
A deep dive into PsOpenProcess internals and how Kaspersky filters access to debuggers.
Absurdities Part-1: Chrome Secrets & Defender Bypasses
A deep dive into Chrome's key protections and how Defendnot fakes antivirus registration to bypass Windows Defender.
[HermeticWiper] UKRAINE INVASION
A new wiper found the day before the Ukraine invasion.
PowerGrid Crisis
The city has been without main power for 3 days now. It's critical for heat & light.
Mission: Turn on the power g...
[Loki-Bot] Stealing Credentials
Loki-Bot is advertised as a Password and CryptoCoin Wallet Stealer on several hacker forums (carter, 2015) (Anonymous...
[PrincessLocker V2.0] ransomware with not so royal encryption
PrincessLocker ransomware has appeared some time ago and has drawn out attention by using the same template of the si...